www.gusucode.com > 图片存储_淘宝相册_免费网盘源代码 > upload.php

    <?php
class uploads
{
	function display_space($user_dat, $globalvars)
	{
		echo "<div style=\"padding:5px;border:#6600FF 1px solid;background-color:#CAE0EA;width:700px;\">您的图片空间已经用了: <b>";
		
		$byte_convert = new functions();
		echo $byte_convert->size_check($user_dat['usedspace']); 
		
		echo "</b>  空间总数为: <b>" . $user_dat['maxspace'] . "MB." . $split_dirall[1] . "</b>.支持的文件后缀为:gif,png,jpg<br />
		</div><br />
		";
	}
	
	
	
	function upload($user_dat, $globalvars)
	{
		$this->display_space($user_dat, $globalvars);
		
		/*
		if(isset ($_POST['upload_image']))
		{
			if($_FILES['imgupload_one']['name'] != null)
			{
				$this->upload_transfer($user_dat, $globalvars, 'imgupload_one');
			} else {
				echo "至少要选一张图片上传!<br />";
			}
			
			if($_FILES['imgupload_two']['name'] != null)
			{
				$this->upload_transfer($user_dat, $globalvars, 'imgupload_two');
			}
			
			if($_FILES['imgupload_three']['name'] != null)
			{
				$this->upload_transfer($user_dat, $globalvars, 'imgupload_three');
			}
			
			if($_FILES['imgupload_four']['name'] != null)
			{
				$this->upload_transfer($user_dat, $globalvars, 'imgupload_four');
			}
		}*/

		
		if ($_FILES["Filedata"]["error"] <= 0&&($_POST['type']=="submit"||$_GET['type']=="submit")){
			$this->upload_transfer($user_dat, $globalvars, 'imgfile');
		}

		
		$filesize_limit = explode(':', $globalvars->settings['max_upload']);
		$uploadmax_set = new functions();
		
		switch($filesize_limit[1])
		{
			case MB:
				$uploadmax = $uploadmax_set->mb_bytes($filesize_limit[0]);
			break;
			
			case KB:
				$uploadmax = $uploadmax_set->kb_bytes($filesize_limit[0]);
			break;
		}
		
		/*
		echo '<p><form action="' . $_SERVER['PHP_SELF'] . '?action=upload" enctype="multipart/form-data" method="post">
		          <input type="hidden" name="MAX_FILE_SIZE" value="' . $uploadmax . '" />
		          覆盖同名文件? Yes<input type="checkbox" name="overwrite_file" value="true" /><br />
				  <input type="file" name="imgupload_one" /><br />
				  <input type="file" name="imgupload_two" /><br />
				  <input type="file" name="imgupload_three" /><br />
				  <input type="file" name="imgupload_four" /><br />
				  <input type="submit" name="upload_image" value="上传" /><br />
				  </form></p>';*/
		include 'uploadImg/temp.html';

	}
	
	function rename($user_dat, $globalvars)
	{
		// Exploit the script once, shame on you.
		
		$split_imgname = explode('.', $_GET['imgname']);
		$split_rename = explode('.', $_GET['rename']);
		
		if($split_imgname[1] != $split_rename[1])
		{
			echo "h4x0rz on teh yu0r script? More like n00bx0rz on teh yu0r script.<br /><br />
			Anyway, there's no reason you can't change the image's extension on your own computer.";
			
			$exitp = new template();
			$exitp->exitp($user_dat, $globalvars);
		}
		
		// Kinda pointless, but rather be safe than sorry.
		$split_ext = explode(',', $globalvars->settings['allowed_ext']);
		$extcount = count($split_ext);
		
		for($i=0;$i<$extcount;$i++)
		{
			$valid_rename = false;
			$split_values = explode(':', $split_ext[$i]);
			
			if(($split_imgname[1] == $split_values[0]) && ($split_values[1] == "allow"))
			{
				$valid_rename = true;
				$i = $ext_count + 1000;
			}
		}
		
		if($valid_rename == true)
		{
			if(@rename($user_dat['usrdir'] . "/" . $_GET['rename'], $user_dat['usrdir'] . "/" . $split_imgname[0] . "." . $split_rename[1]))
			{
				echo "<div style=\"padding:5px;border:#6600FF 1px solid;background-color:#CAE0EA;width:600px;\"><i>" . $_GET['rename'] . "</i> 已经成功改名成 <i>" . $_GET['imgname'] . "</i>";
				echo '<br />点击 <a href="' . $_SERVER['PHP_SELF'] . '?action=imgdir">这里</a> 返回.</div>';
				
				@unlink($user_dat['usrdir'] . "/thumbnails/" . $split_rename[0] . ".gif");
			}
		} else {
			echo "您试图保留的图片扩展名无效.";
		}
	}

	//删除图片文件及数据库
	function delete($user_dat, $globalvars)
	{
		if(!inject_check($_GET['delete']))
		{
		$return = false;
		//从数据库获得文件名
		$img_query = mysql_query("select filename from imgup_imgs where id in (".$_GET['delete'].") and userid = ".$user_dat['id']);
			while($img_name = mysql_fetch_array($img_query))
			{
				//删除数据库值
				if(mysql_query("delete from imgup_imgs where id in (" .$_GET['delete'].") and userid = ".$user_dat['id']))
				{
					if(unlink($user_dat['usrdir'] . "/" . $img_name['filename']))//删除原图
					{
						$split_imgname = explode(".",$img_name['filename']);
						@unlink($user_dat['usrdir'] . "/thumbnails/" . $split_imgname[0] . ".gif");//删除缩略图 
						 $return = true;
					}
				}
				
			}
			//删除结束反馈给用户
			if($return)
			{
				echo "<div style=\"padding:5px;border:#6600FF 1px solid;background-color:#CAE0EA;width:600px;\"><i>" . $_GET['delete'] . "</i> 已经被成功删除. ";
				echo '点击 <a href="' . $_SERVER['PHP_SELF'] . '?action=imgdir">这里</a> 返回.</div>';
			} else {
				echo "<div style=\"padding:5px;border:#6600FF 1px solid;background-color:#CAE0EA;width:600px;\">您暂时不能删除该文件. </div>";
				echo '<div style=\"padding:5px;border:#6600FF 1px solid;background-color:#CAE0EA;width:600px;\">点击 <a href="' . $_SERVER['PHP_SELF'] . '?action=imgdir">这里</a> 返回.</div>';
			}
		}else{
			echo "<div style=\"padding:5px;border:#6600FF 1px solid;background-color:#CAE0EA;width:600px;\"><i>请不要干无聊的事情!.</i>";
		}

		
		}
	//展示页函数
	function display($user_dat, $globalvars)
	{
		$this->display_space($user_dat, $globalvars);
		$open_usrdir = opendir($user_dat['usrdir']);
		require_once("display.php");
	}

}
?>